This opportunity is closed for applications

The deadline was Friday 12 February 2021
Ministry of Defence

Intelligence Requirements Management (IRM) and Collection Management (CM) Software Development

9 Incomplete applications

8 SME, 1 large

9 Completed applications

6 SME, 3 large

Important dates

Published
Friday 29 January 2021
Deadline for asking questions
Friday 5 February 2021 at 11:59pm GMT
Closing date for applications
Friday 12 February 2021 at 11:59pm GMT

Overview

Summary of the work
The Contractor is required to continue the development of the Intelligence Requirements Management (IRM) & Collection Management (CM) software application and deliver into service (IOC) by the end of Mar 2022. They must facilitate and support appropriate hosting to support IOC, providing the technical expertise to support the accreditation process.
Latest start date
Friday 19 March 2021
Expected contract length
15 months plus an optional extension of 3 months
Location
South West England
Organisation the work is for
Ministry of Defence
Budget range
£2.3M- £3.2M ex VAT

About the work

Why the work is being done
Provision of a UK Defence , IRM and CM software tool to deliver the outcomes required by Defence.
By delivering Initial Operating Capability by March 2022 and post IOC, delivering continued refinement/development of the product based on user feedback, this requirement will contribute towards the Strategic Vision which is a single all-domain Intelligence Mission Management System which is fully integrated across the UK Defence Intelligence Enterprise and key allies. It will be multi-domain, integrated through all levels of command and security tiers and deliver a high degree of automation.
Problem to be solved
Improve the process for Intelligence RFI Management, Intelligence Requirements Management and Collections Management.

The Contractor is required to continue development of an existing application to reach the maturity requirement for an Initial Operating Capability by Mar 2022. The Contractor is expected to make suggestions to improve the design and functionality of the tool from their own technical experience and from feedback generated by user groups.

The Contractor will facilitate user engagement events (up to 12 in the contracted period), and ensure that sprint meetings such as planning, reviews and retrospectives are open to all appropriate stakeholders. The engagements could be briefs to Senior Executives or facilitating User groups of up to 20 staff, this may be conducted remotely given the current COVID limitations.

The Contractor must support the development with ad hoc coaching on specific roles such as product ownership. Consideration must be given to the use of digital collaboration tools to aid remote communication, in view of the prevailing COVID-19 restrictions.

The Contractor must deliver a minimum of 2 x Minimum Viable Products demonstrations (Mid-year and End of contract).

Post IOC, the Contractor will be responsible for delivering continued refinement/development of the product based on User feedback.
Who the users are and what they need to do
The Lead User will be the Joint Intelligence Operations Centre (JIOC). They are responsible for managing and coordinating RFIs on behalf of Defence.

The new tool's objective is to provide any user the ability to search a repository of stored information as well as streamlining the processes involved with RFI, IRM & CM.
Early market engagement
n/a
Any work that’s already been done
6 months of development activity has been completed which has seen development of the front-end Graphical User Interface (GUI) and development of the Request For Information (RFI) module.
Existing team
n/a
Current phase
Alpha

Work setup

Address where the work will take place
Primary workplace is RAF Wyton, Huntingdon, Cambridgeshire PE28 2EA. Some work may be undertaken remotely due to COVID-19 restrictions.
Working arrangements
The Contractor will work 5 days a week (Mon-Fri) on standard working hours.

The Contractor will work with the Product Owner (PO) who resides at RAF Wyton and the Desk Officer at UK Stratcom.

The development will be conducted at OFFICIAL however, the system will be designed so that it will be deployed onto a higher classification up to SECRET level to meet the Initial Operating Capability.
Security clearance
The Contractor must have in place or be prepared to undergo:

• Developed Vetting (DV) for minimum 2 x staff.
• Security Clearance (SC) for all other staff.

Additional information

Additional terms and conditions
Suppliers must use or be prepared to sign up to the Authority's Purchase to Payment Tool called CP&F.

Payments will be in monthly/quarterly in arrears and aligned to deliverables.

Travel and Subsistence must be included in the fixed price.

The role is outside IR35.

The Cyber Risk Profile has been identified as LOW (reference RAR-RT473ZGN) . PLEASE COMPLETE YOUR RESPONSE at https://supplier-cyber-protection.service.gov.uk/login when responding to this advert, to be considered for inclusion in the next stage.

A Security Aspects Letter (SAL) will be issued.

Further defence- specific contractual conditions will apply and will be provided to the winning bidder.

Skills and experience

Buyers will use the essential and nice-to-have skills and experience to help them evaluate suppliers’ technical competence.

Essential skills and experience
  • Provide a track record of successfully delivering strategic user centric design solutions or services into security or defence organisations.
  • Demonstrate extensive understanding, experience and evidence of SME's in the RFI, IRM & CM Defence processes.
  • Evidence that your team is highly experienced in delivering services using agile delivery methodologies, at scale.
  • Demonstrate experience building intuitive and easy-to-use web-based applications.
  • Demonstrate availability of resources to be able to start as soon as possible.
  • Demonstrable evidence of ability to run agile teams remotely and collaboratively and manage geographically dispersed teams.
  • Evidence of DevOps and Continuous Integration/ Continuous Deployment (CI/CD) through Azure Devops tooling and the use of Docker for portability.
  • Proven track-record of automated testing procedures and generated testing reports through technologies like protractor and cucumber.
  • Demonstrate that the team can provide a specialist resource to support the system administration and infrastructure requirements both of the development environment and the application itself.
Nice-to-have skills and experience
  • Provide evidence of successfully transitioning projects into a live service environment within security or defence organisations, or similar secure operating environments, within the last 5 years
  • Demonstrate knowledge of working with 3rd parties to develop standard interfaces and data exchange portals.
  • Provide evidence of Innovative solution design and development.
  • Provide evidence of knowledge of command query responsibility segregation pattern (CQRS) and event sourcing model.
  • Provide evidence of knowledge and experience in IdentityServer4
  • Provide evidence of knowledge and experience in C# and .NET Core
  • Provide evidence of knowledge and experience in Angular and the Nebular Theme
  • Provide evidence of knowledge and experience in MongoDB

How suppliers will be evaluated

All suppliers will be asked to provide a written proposal.

How many suppliers to evaluate
3
Proposal criteria
  • Describe how your proposed technical solution will be successfully delivered including the approach and methodology.
  • Demonstrate your technical competence: Skills & Experience.
  • How your approach to deliver IOC by Mar 2022 and continued product refinement based on user feedback post- IOC, contributes towards Strategic Vision (‘why work is being done’ section refers).
  • Provide estimated timeframes for the work e.g modular or phased approach
  • Explain your approach to how risks and dependencies will be identified and managed.
  • Confirm your team structure & organisational make up.
  • Explain how your proposed solution provides the Ministry of Defence with value for money.
  • Describe how you will develop the solution on a MOD provided, cloud- based Azure DevOps environment.
  • Proposals must account for DevOps CI/CD tooling, and any licensing required. Provide a specialist resource to support the system administration and infrastructure requirements of the development environment and the application.
Cultural fit criteria
  • Work as a team with our organisation and other suppliers.
  • Be transparent and collaborative when making decisions & recommendations
  • Have a no-blame culture and encourage people to learn from their mistakes
  • Take responsibility for your work
  • Share knowledge and experience with other team members
  • Describe how you will constructively and respectfully challenge the status quo
  • Explain how you will work with and explain complex technical issues to clients with low technical expertise
  • Demonstrate commitment to excellence and improvement
  • Describe how you will show commitment to ensuring a team understands the user need over simply delivering work
  • Describe how you will work as part of an integrated, yet distributed, team
  • Describe how you propose to support positive working relationships throughout the life of the contract
  • Explain what methods you propose to use to engage; communicate, constructively challenge and work effectively with UKSC
  • Explain how you propose to manage the boundary between modern digital ways of working and formal procedures and policies
Payment approach
Fixed price
Additional assessment methods
Evaluation weighting

Technical competence

60%

Cultural fit

20%

Price

20%

Questions asked by suppliers

1. Who has performed work on this toolset up to now and are they able to apply for this opportunity?
CGI IT UK Limited. As far as we are aware, the company is eligible to apply for this opportunity.
2. Can you confirm which supplier carried out the 6 months of development activity already completed?
CGI IT UK Limited
3. Would the authority be in a position to share the name of organisation that developed the Graphic User Interface (GUI) and the Request for Information (RFI) module?
CGI IT UK Limited
4. Please can we inquire about the details of the existing incumbent who have previously carried out the initial 6 months of development activity?
The previous incumbent was CGI IT UK Limited. Please note that there is no existing incumbent.
5. Does this requirement replace an existing service/capability and if so what services/capabilities does it replace?
The Contractor is required to continue the development of a prototype Intelligence Requirements Management (IRM) & Collection Management (CM) software application and deliver into service (IOC) by the end of Mar 2022.
6. Which roles specifically require DV? for example: Developers? Business analysts? User Researchers?
One person from the Business side and one from the Technical side.

The business side (to talk to the Product Owner and end users) could be a Business Analyst.

The technical side (to understand the deployment environment and accreditation issues) could be the Tech Lead or developer.
7. Are you open to alternative models such as Software as a Service (SaaS) which could significantly reduce the upfront cost investment burden for MOD and provide an evergreen capability?
Alternative models will not be considered.
8. If you are open to SaaS models are you also open to alternative proposals on Intellectual Property Rights, that would allow a supplier to license out background and foreground IP where it has self funded the development?
We will not consider alternative proposals on Intellectual Property Rights.
9. Once this current phase is complete would the intention be to compete the next phase of delivery?
We are not currently in a position to be able to confirm what, when or if any further work- which exceeds the scope of this advert- will be required.
10. You’ve stated that “Further defence- specific contractual conditions will apply and will be provided to the winning bidder”. Could we please have confirmation of these additional contractual terms & conditions now? We need to assess them as part of our opportunity qualification process.
Additional Ts&Cs will not be shared at this stage.
11. Could you please provide a copy of the SAL for this project at the same time the DOS ITT is released to shortlisted bidders?
Yes
12. What is the team collaboration approach you are looking for?
The Authority feels that the cultural fit criteria in the advert indicates the type of approach we are expecting.
13. Are you expecting the successful supplier to host the service on the Authority’s behalf?
The development will be conducted at OFFICIAL however, the system will be designed so that it will be deployed onto a higher classification up to SECRET level to meet the Initial Operating Capability. The Supplier will not be required to host the service but will be required to liaise with Defence Digital to facilitate and support the toolset for hosting on the chosen MOD environment, providing the technical expertise to support the accreditation process.
14. You have mentioned that you are expecting the successful supplier to facilitate and support the hosting. Can you please provide more details on that?
The development will be conducted at OFFICIAL however, the system will be designed so that it will be deployed onto a higher classification up to SECRET level to meet the Initial Operating Capability. The Supplier will not be required to host the service but will be required to liaise with Defence Digital to facilitate and support the toolset for hosting on the chosen MOD environment, providing the technical expertise to support the accreditation process.
15. Are there any security constraints around the hosting?
The development will be conducted at OFFICIAL however, the system will be designed so that it will be deployed onto a higher classification up to SECRET level to meet the Initial Operating Capability.
16. Is development expected to follow the GDS principles and processes?
This activity is not anticipated to follow GDS as this is not considered a Digital Service; however, Agile principles will be expected to be applied.
17. Is the current product live?
No. The product is in the developmental phase.
18. Is the technology stack already decided? If yes, can you please share the technology stack?
The Supplier will be required to liaise with Defence Digital to facilitate and support the toolset for hosting on the chosen MOD environment, providing the technical expertise to support the accreditation process.
19. In Question “Demonstrate knowledge of working with 3rd parties to develop standard interfaces and data exchange portals.”, are you looking for experience to develop and expose APIs for 3rd party use or are you looking for experience of utilising APIs exposed by 3rd parties?
The Authority is looking for the Supplier to demonstrate knowledge of developing standards interfaces and data exchange portals in their response through whichever mechanism they see fit.
20. Is there is an existing design/early build that we would be continuing with?
Yes. The Supplier is required to continue development of the Intelligence Requirements Management (IRM) & Collection Management (CM) software application and delivery into live service
21. Is the Authority open to looking at COTS products that already exist?
No. The Supplier is required to continue development of the Intelligence Requirements Management (IRM) & Collection Management (CM) software application and delivery into live service
22. Is the Authority open to other languages or must all services be written in C# and.NET Core?
The Authority will require the continued use of current languages, to continue development of the Intelligence Requirements Management (IRM) & Collection Management (CM) software application and delivery into live service
23. Is there an existing incumbent?
The previous incumbent was CGI IT UK Limited. There is no existing incumbent.
24. Will the contractor be required to provide, set-up and manage their own CI / CD tooling?
The Authority will provide access to an MS Azure based cloud environment which can be used for development purposes. The contractor will be expected to set up and manage their own CI/CD pipeline using either the MS tools included in the environment or their own solution. If the contractor wishes to use tooling distinct from those included in the pattern then they will need to approach to Authority to ensure that these are in line with the environment accreditation criteria.
25. Will the contractor be required to support the service / products delivered, and if so at what level of availability?
During developmental periods the Supplier will be required to support the service / products delivered during normal working hours. During the transition to live phase, some flexible working hours may need to be adopted and agreed with Defence Digital and MOD support teams but no level of availability has currently been set.
26. What is the structure and size of the authority team / user base that the development teams will be collaborating with? Does the authority have a preferred methodology or approach to this?
There is a Programme lead, Product Owner and Cap Desk Officer. There is POCs from Single Services. During the development phase there will be a user base to assist with development and testing. The direction for development will be taken from the Product Owner with close liaison with the UK Stratcom Desk Officer. Suppliers are required to demonstrate in their response what methodology/approach they believe will be appropriate.
27. Does the authority have any requirements or preference regarding collaboration tooling?
Proposals must account for Dev Ops CI/CD tooling. Any tooling the supplier chooses to use must be accessible from MOD networked laptops/PCs and must be appropriate for the level of security which the project/phase requires.
28. How mature is the development to date and what level of backlog is associated with the previous 6 months of development and the front-end GUI and RFI module?
The product is currently in the Alpha development phase. The backlog will be coordinated and monitored by the Product Owner and the supplier's appointed person, such as a Business Analyst. Details of the backlog will be provided to suppliers with the ITT.
29. *Authority clarification of Cyber Risk Profile completion date*
The Authority clarifies that responses to the Cyber Risk Profile- as set out in the Additional Terms and Conditions section of this advert- are not required by Friday 12 February 2021 at 11:59pm GMT but instead will be required to be submitted with the ITT response.